Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func NewCA ¶
func NewCA(ctx *controller.Context, issuer v1alpha1.GenericIssuer) (issuer.Interface, error)
Types ¶
type CA ¶
type CA struct { *controller.Context // contains filtered or unexported fields }
CA is a simple CA implementation backed by the Kubernetes API server. A secret resource is used to store a CA public and private key that is then used to sign certificates.
func (*CA) Issue ¶
func (c *CA) Issue(ctx context.Context, crt *v1alpha1.Certificate) (*issuer.IssueResponse, error)
Issue will issue a certificate using the CA issuer contained in CA. It uses the 'Ready' status condition to convey the majority of failures, and treats them all as errors to be retried. If there are any failures, they are likely caused by missing or invalid supporting resources, and to ensure we re-attempt issuance when these resources are fixed, it always returns an error on any failure.
func (*CA) Sign ¶ added in v0.9.0
func (c *CA) Sign(ctx context.Context, cr *v1alpha1.CertificateRequest) (*issuer.IssueResponse, error)
Click to show internal directories.
Click to hide internal directories.